This family includes malicious code that attempts to exploit a vulnerability in the Win32 TrueType font-parsing engine of the Microsoft Windows component “Win32k.sys”. An attacker that successfully exploits this vulnerability can run arbitrary code in kernel mode.
Geographical distribution of attacks during the period from 25 March 2019 to 25 March 2020
Top 10 countries with most attacked users (% of total attacks)
* Percentage of all unique Kaspersky users worldwide who have been attacked by this malware